refactor & fix api for get photographs (#2)

Author: airslice

server/.env.example

@@ -1,15 +1,11 @@
 # Re:Earth CMS Integration
-REEARTH_CMS_INTEGRATION_API_BASE_URL=https://api.cms.reearth.dev
-REEARTH_CMS_INTEGRATION_API_ACCESS_TOKEN=your-reearth-cms-integration-token
-REEARTH_CMS_PROJECT_ID=your-reearth-cms-project-id
-REEARTH_CMS_PROJECT_PHOTOGRAPHS_MODEL_ID=your-cms-model-id-for-photographs
+REEARTH_CMS_INTEGRATION_API_BASE_URL=https://api.cms.reearth.dev/api
+REEARTH_CMS_INTEGRATION_API_ACCESS_TOKEN=your_access_token
+REEARTH_CMS_PROJECT_ID=your_project_id
+REEARTH_CMS_PROJECT_PHOTOGRAPHS_MODEL_ID=your_photographs_model_id
 
 # Authentication
-API_SECRET_KEY=your-default-api-key
+API_SECRET_KEY=your_secret_key
 
 # CORS Configuration
-CORS_ORIGIN=http://localhost:5173
-
-# Upload Configuration
-MAX_FILE_SIZE=10485760
-UPLOAD_PATH=./uploads
+CORS_ORIGIN=http://localhost:5200

server/.yarn/install-state.gz

@@ -1,16 +1,16 @@
-import { VercelRequest, VercelResponse } from '@vercel/node';
-import cors from 'cors';
-import multer from 'multer';
+import { VercelRequest, VercelResponse } from "@vercel/node";
+import cors from "cors";
+import multer from "multer";
 
-import { cmsService } from '../../src/services/cms';
-import { authenticate, AuthenticatedRequest } from '../../src/utils/auth';
-import { sendSuccess, sendError } from '../../src/utils/response';
+import { cmsService } from "../../src/services/cms.js";
+import { authenticate, AuthenticatedRequest } from "../../src/utils/auth.js";
+import { sendSuccess, sendError } from "../../src/utils/response.js";
 
 // CORS configuration
 const corsOptions = {
-  origin: process.env.CORS_ORIGIN || '*',
-  methods: ['POST', 'OPTIONS'],
-  allowedHeaders: ['Content-Type', 'Authorization']
+  origin: process.env.CORS_ORIGIN || "*",
+  methods: ["POST", "OPTIONS"],
+  allowedHeaders: ["Content-Type", "Authorization"],
 };
 
 // Apply CORS middleware
@@ -25,7 +25,6 @@ function runCors(req: VercelRequest, res: VercelResponse) {
   });
 }
 
-
 // Multer configuration for memory storage
 const upload = multer({
   storage: multer.memoryStorage(),
@@ -34,19 +33,25 @@ const upload = multer({
   },
   fileFilter: (_req, file, cb) => {
     // Check if file is an image
-    const allowedMimes = ['image/jpeg', 'image/jpg', 'image/png', 'image/webp', 'image/gif'];
+    const allowedMimes = [
+      "image/jpeg",
+      "image/jpg",
+      "image/png",
+      "image/webp",
+      "image/gif",
+    ];
     if (allowedMimes.includes(file.mimetype)) {
       cb(null, true);
     } else {
-      cb(new Error('Only image files are allowed'));
+      cb(new Error("Only image files are allowed"));
     }
-  }
+  },
 });
 
 // Wrapper to promisify multer
 function runMulter(req: VercelRequest, res: VercelResponse) {
   return new Promise((resolve, reject) => {
-    upload.single('image')(req as any, res as any, (error: unknown) => {
+    upload.single("image")(req as any, res as any, (error: unknown) => {
       if (error) {
         return reject(error);
       }
@@ -55,53 +60,82 @@ function runMulter(req: VercelRequest, res: VercelResponse) {
   });
 }
 
-
-export default async function handler(req: AuthenticatedRequest, res: VercelResponse) {
+export default async function handler(
+  req: AuthenticatedRequest,
+  res: VercelResponse
+) {
   await runCors(req, res);
 
   // Handle preflight requests
-  if (req.method === 'OPTIONS') {
+  if (req.method === "OPTIONS") {
     return res.status(200).end();
   }
 
-  if (req.method !== 'POST') {
-    return sendError(res, 'METHOD_NOT_ALLOWED', `Method ${req.method} not allowed`, 405);
+  if (req.method !== "POST") {
+    return sendError(
+      res,
+      "METHOD_NOT_ALLOWED",
+      `Method ${req.method} not allowed`,
+      405
+    );
   }
 
   // Check authentication
   if (!authenticate(req)) {
-    return sendError(res, 'UNAUTHORIZED', 'Invalid or missing authentication token', 401);
+    return sendError(
+      res,
+      "UNAUTHORIZED",
+      "Invalid or missing authentication token",
+      401
+    );
   }
 
-  const projectId = process.env.REEARTH_CMS_PROJECT_ID || 'default-project-id';
+  const projectId = process.env.REEARTH_CMS_PROJECT_ID || "default-project-id";
 
   try {
     // Process file upload
     await runMulter(req, res);
-    
+
     const file = (req as any).file;
-    
+
     if (!file) {
-      return sendError(res, 'NO_FILE', 'No image file provided', 400);
+      return sendError(res, "NO_FILE", "No image file provided", 400);
     }
 
     // Upload to CMS
     const uploadedAsset = await cmsService.uploadAsset(projectId, file);
 
     return sendSuccess(res, uploadedAsset, 201);
-
   } catch (error: unknown) {
-    console.error('Upload error:', error);
-    
-    if (error instanceof Error && error.message === 'Only image files are allowed') {
-      return sendError(res, 'INVALID_FILE_TYPE', 'Only image files are allowed', 400);
+    console.error("Upload error:", error);
+
+    if (
+      error instanceof Error &&
+      error.message === "Only image files are allowed"
+    ) {
+      return sendError(
+        res,
+        "INVALID_FILE_TYPE",
+        "Only image files are allowed",
+        400
+      );
     }
-    
-    if (error && typeof error === 'object' && 'code' in error && error.code === 'LIMIT_FILE_SIZE') {
-      return sendError(res, 'FILE_TOO_LARGE', 'File size exceeds 10MB limit', 413);
+
+    if (
+      error &&
+      typeof error === "object" &&
+      "code" in error &&
+      error.code === "LIMIT_FILE_SIZE"
+    ) {
+      return sendError(
+        res,
+        "FILE_TOO_LARGE",
+        "File size exceeds 10MB limit",
+        413
+      );
     }
-    
-    return sendError(res, 'UPLOAD_FAILED', 'File upload failed', 500);
+
+    return sendError(res, "UPLOAD_FAILED", "File upload failed", 500);
   }
 }
 
@@ -110,4 +144,4 @@ export const config = {
   api: {
     bodyParser: false,
   },
-};
+};

server/api/assets/upload.ts

@@ -1,17 +1,17 @@
-import { VercelRequest, VercelResponse } from '@vercel/node';
-import cors from 'cors';
+import { VercelRequest, VercelResponse } from "@vercel/node";
+import cors from "cors";
 
-import { cmsService } from '../src/services/cms';
-import { CreatePhotographRequest } from '../src/types';
-import { authenticate, AuthenticatedRequest } from '../src/utils/auth';
-import { sendSuccess, sendError } from '../src/utils/response';
-import { validateRequest, PhotographSchema } from '../src/utils/validation';
+import { cmsService } from "../src/services/cms.js";
+import { CreatePhotographRequest } from "../src/types";
+import { authenticate, AuthenticatedRequest } from "../src/utils/auth.js";
+import { sendSuccess, sendError } from "../src/utils/response.js";
+import { validateRequest, PhotographSchema } from "../src/utils/validation.js";
 
 // CORS configuration
 const corsOptions = {
-  origin: process.env.CORS_ORIGIN || '*',
-  methods: ['GET', 'POST', 'OPTIONS'],
-  allowedHeaders: ['Content-Type', 'Authorization']
+  origin: process.env.CORS_ORIGIN || "*",
+  methods: ["GET", "POST", "OPTIONS"],
+  allowedHeaders: ["Content-Type", "Authorization"],
 };
 
 // Apply CORS middleware
@@ -26,58 +26,89 @@ function runCors(req: VercelRequest, res: VercelResponse) {
   });
 }
 
-export default async function handler(req: AuthenticatedRequest, res: VercelResponse) {
+export default async function handler(
+  req: AuthenticatedRequest,
+  res: VercelResponse
+) {
   await runCors(req, res);
 
   // Handle preflight requests
-  if (req.method === 'OPTIONS') {
+  if (req.method === "OPTIONS") {
     return res.status(200).end();
   }
 
   // Check authentication
   if (!authenticate(req)) {
-    return sendError(res, 'UNAUTHORIZED', 'Invalid or missing authentication token', 401);
+    return sendError(
+      res,
+      "UNAUTHORIZED",
+      "Invalid or missing authentication token",
+      401
+    );
   }
 
-  const modelId = process.env.REEARTH_CMS_PROJECT_PHOTOGRAPHS_MODEL_ID || 'default-model-id';
+  const modelId =
+    process.env.REEARTH_CMS_PROJECT_PHOTOGRAPHS_MODEL_ID || "default-model-id";
 
   try {
     switch (req.method) {
-      case 'GET':
+      case "GET":
         return await handleGetPhotographs(req, res, modelId);
-      
-      case 'POST':
+
+      case "POST":
         return await handleCreatePhotograph(req, res, modelId);
-      
+
       default:
-        return sendError(res, 'METHOD_NOT_ALLOWED', `Method ${req.method} not allowed`, 405);
+        return sendError(
+          res,
+          "METHOD_NOT_ALLOWED",
+          `Method ${req.method} not allowed`,
+          405
+        );
     }
   } catch (error) {
-    console.error('API Error:', error);
-    return sendError(res, 'INTERNAL_ERROR', 'Internal server error', 500);
+    console.error("API Error:", error);
+    return sendError(res, "INTERNAL_ERROR", "Internal server error", 500);
   }
 }
 
-async function handleGetPhotographs(_req: VercelRequest, res: VercelResponse, modelId: string) {
+async function handleGetPhotographs(
+  _req: VercelRequest,
+  res: VercelResponse,
+  modelId: string
+) {
   try {
     const result = await cmsService.getPhotographs(modelId);
     return sendSuccess(res, result.items, 200, result.total);
   } catch (_error) {
-    return sendError(res, 'FETCH_FAILED', 'Failed to fetch photographs', 500);
+    return sendError(res, "FETCH_FAILED", "Failed to fetch photographs", 500);
   }
 }
 
-async function handleCreatePhotograph(req: VercelRequest, res: VercelResponse, modelId: string) {
+async function handleCreatePhotograph(
+  req: VercelRequest,
+  res: VercelResponse,
+  modelId: string
+) {
   const validation = validateRequest(PhotographSchema, req.body);
-  
+
   if (!validation.success) {
-    return sendError(res, 'VALIDATION_ERROR', 'Invalid request data', 400, validation.errors);
+    return sendError(
+      res,
+      "VALIDATION_ERROR",
+      "Invalid request data",
+      400,
+      validation.errors
+    );
   }
 
   try {
-    const photograph = await cmsService.createPhotograph(modelId, validation.data as CreatePhotographRequest);
+    const photograph = await cmsService.createPhotograph(
+      modelId,
+      validation.data as CreatePhotographRequest
+    );
     return sendSuccess(res, photograph, 201);
   } catch (_error) {
-    return sendError(res, 'CREATE_FAILED', 'Failed to create photograph', 500);
+    return sendError(res, "CREATE_FAILED", "Failed to create photograph", 500);
   }
-}
+}